Improved gen-key function for server.

Update TODO.
author: Jameson Graef Rollins <jrollins@phys.columbia.edu> 2008-06-21 20:32:33 -0400
committer: Jameson Graef Rollins <jrollins@phys.columbia.edu> 2008-06-21 20:32:33 -0400
commit: d263f30d4fe03d1976ecd899ba2482cb870c2a4d (patch)
tree: 579896c653a48844f5ed874240b4e333e58abadf /doc
parent: 6a202af09f5a1bc47069e5e36dbdfa3f6b392a5b (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/doc/TODO b/doc/TODO
index 71b9582..4f32bb0 100644
--- a/doc/TODO
+++ b/doc/TODO
@@ -113,3 +113,12 @@ File bug against seahorse about how, when creating new primary keys,
    key.
 
 File bug against enigmail about lack of ability to create subkeys.
+
+Priviledge separation: monkeysphere user to handle authn keyring and
+   generate authorized_keys file (which would be moved into place by
+   root).  Host keyring would be owned by root.
+
+Check permissions of authorized_user_ids file to be writable only by
+   user and root (same as authorized_keys)
+
+Improve function that sets owner trust for keys in server keychain.
author	Jameson Graef Rollins <jrollins@phys.columbia.edu>	2008-06-21 20:32:33 -0400
committer	Jameson Graef Rollins <jrollins@phys.columbia.edu>	2008-06-21 20:32:33 -0400
commit	d263f30d4fe03d1976ecd899ba2482cb870c2a4d (patch)
tree	579896c653a48844f5ed874240b4e333e58abadf /doc
parent	6a202af09f5a1bc47069e5e36dbdfa3f6b392a5b (diff)